Cisco Firepower System Software: TCP Retransmission Bypass Vulnerability
CVE-2018-15443 · MEDIUM Severity
AV:N/AC:L/AU:N/C:N/I:P/A:N
A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass a configured Intrusion Prevention System (IPS) rule that inspects certain types of TCP traffic. The vulnerability is due to incorrect TCP retransmission handling. An attacker could exploit this vulnerability by sending a crafted TCP connection request through an affected device. A successful exploit could allow the attacker to bypass configured IPS rules and allow uninspected traffic onto the network.
Learn more about our Cis Benchmark Audit For Cisco.